2 matches found
CVE-2005-0441
Multiple stack-based buffer overflows in Sybase Adaptive Server Enterprise ASE 12.x before 12.5.3 ESD1 allow remote authenticated users to execute arbitrary code via the 1 attribvalid function, 2 covert function, 3 declare statement, or 4 a crafted query plan, or remote authenticated users with...
CVE-2002-1145
The xprunwebtask stored procedure in the Web Tasks component of Microsoft SQL Server 7.0 and 2000, Microsoft Data Engine MSDE 1.0, and Microsoft Desktop Engine MSDE 2000 can be executed by PUBLIC, which allows an attacker to gain privileges by updating a webtask that is owned by the database owne...